SHARE
Follow this article on Twitter Facebook LinkedIn Bookmark and Share
Home >> Government >> Technology

IE 7 flaw could make phishing attacks easier

IE 7 flaw could make phishing attacks easier

By:  Robert McMillan  On: 14 Mar 2007 For: IDG News Service (San Francisco Bureau) Creator

A vulnerability in Microsoft's Internet Explorerbrowser could help fraudsters make phishing Web sites appear legitimate, a security researcher reported Wednesday.

COMMENT ON THIS ARTICLE

A vulnerability in Microsoft Corp.'s Internet Explorer (IE) browser could help fraudsters make phishing Web sites appear legitimate, a security researcher reported Wednesday.

The flaw lies in the way IE7 processes a locally stored HTML (Hypertext Markup Language) error message page that is typically shown when the user cancels the loading of a Web page, said Aviv Raff, a security researcher based in Israel.

The error message tells the user that "navigation to the webpage was cancelled," and offers the user the opportunity to "refresh the page." If the refresh link is clicked, IE can be tricked into displaying the wrong Web address for a page. Raff has published proof of concept code that shows how IE can be made to display a Web page on his Web site as if it is from the cnn.com domain.

This flaw could be exploited by phishers who want to make their spoofed Web sites appear legitimate, Raff said.

"I can inject a script that will display anything I want in the page when the user clicks the 'refresh' link," he said via instant message. "Combining this with the design flaw, an attacker can render in the browser whatever he wants with whatever URL he wants in the address bar."

This type of bug is known as a cross-site scripting vulnerability. It affects IE 7 on Vista and Windows XP, Raff added.

Microsoft could not immediately confirm Raff's findings, but the company issued a statement saying that it is investigating the issue and is "not aware of any attacks attempting to use the reported vulnerability or of customer impact at this time."

COMMENT ON THIS ARTICLE


Sign up for our Newsletters
Tags: vulnerability, whatever URL
Close X












Close X
Print |  Views: 602   |   Rating:offoffoffoffoff  (0 votes)
Rate this article on a scale of
1 to 5 stars,5 being the best.



Close X
Page 1

Robert McMillan Robert McMillan is a contributor to the International Data Group (IDG) News Service, which publishes global technology stories from bureaus around the world to more than 300 publications in more than 60 countries.

Related Content

Stop using Safari for now: Microsoft
Stop using Safari for now: MicrosoftMicrosoft Corp. has advised Windows users not to use Safari for Web browsing until either Apple or Microsoft releases a security patch. Apple has nothing to say for now.
Free domain names like fuel to malware fire
Free domain names like fuel to malware fireCheap or free registration of new domain names drives the growth in Web sites used for spamming or hosting malicious software, according to research from McAfee.
SMB: Almost as good
SMB: Almost as good In 1998 we purchased an electronic book, or e-book, reader called RocketBook manufactured by Nuvomedia. It had a great design (very comfortable to hold with good heft), a reasonable display (albeit limited to office lighting conditions) good battery life and could render files created in the company’s proprietary format as well as text and limited HTML.
Why the Royal Ontario Museum is still a technology dinosaur
at the royal ontario museum in toronto, the name of some exhibits are more aspirational than accurate. “early typewriters: gateways to the information

Comments (0)

No Comments!
Name: (required) eMail: (optional)

Your email address will not appear online and will be used only if the editor wishes to contact you personally for additional comments.